$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A1C0742EFDF811EEA4D57274C4F9AE02.roa File: A1C0742EFDF811EEA4D57274C4F9AE02.roa (raw, json) Hash identifier: JXeJqxRjv6XY1o3PZOsZQUdvlF7VbU2rS+ppRqunUIM= Subject key identifier: AC:65:BD:65:83:29:8E:2F:8E:23:BC:D8:EE:26:37:A1:59:14:78:63 Certificate issuer: /CN=A91BEBE9/serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Certificate serial: D7 Authority key identifier: 0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A1C0742EFDF811EEA4D57274C4F9AE02.roa Signing time: Mon 01 Jul 2024 05:46:41 +0000 ROA not before: Mon 01 Jul 2024 05:46:41 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 36184 IP address blocks: 217.10.226.0/24 maxlen: 24 217.10.229.0/24 maxlen: 24 217.10.230.0/24 maxlen: 24 217.10.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBE9/serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Validity Not Before: Jul 1 05:46:41 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668242c1-adee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:ce:06:53:9d:23:ed:e2:4c:9e:fe:9f:79: cc:a3:d3:b4:8a:81:92:0b:02:75:11:f4:a3:d6:6a: 42:95:fd:4f:30:da:2b:30:a8:09:82:0e:6d:b1:d7: bb:42:3a:81:28:0c:08:93:c6:21:56:eb:e6:de:b4: 2c:93:53:91:5d:7e:3c:7d:58:c6:d4:18:ab:cd:8b: 56:1d:c1:25:6b:5a:7d:eb:ff:34:9a:5b:44:36:3e: a8:49:37:57:77:49:4f:1f:fc:aa:20:12:19:99:46: c7:6b:d9:44:67:08:4b:59:c3:3b:a3:51:31:3e:b7: 6f:7b:ae:88:1d:c5:2d:d3:4d:26:df:e3:d1:b2:68: f5:77:57:84:c1:9b:cb:bb:96:e7:5d:07:04:90:d2: 0d:9d:c6:5e:29:67:9e:24:eb:33:0f:fd:ad:7d:2e: db:f3:ff:51:5b:73:a1:5b:a1:f8:ae:b9:dc:8b:7a: 57:60:72:c7:24:0f:e2:1c:01:6b:88:11:fe:74:7c: ce:1f:b7:e8:bb:e0:4c:11:3e:22:c6:c6:a5:5f:65: a0:92:e9:b1:16:3e:fe:b8:6d:ae:ab:cb:d4:df:40: bd:0b:17:09:32:5f:cb:91:91:49:e6:36:59:97:aa: 10:2a:bb:b8:41:9f:a9:a0:ed:8b:b5:2c:8f:e7:6a: c5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:65:BD:65:83:29:8E:2F:8E:23:BC:D8:EE:26:37:A1:59:14:78:63 X509v3 Authority Key Identifier: keyid:0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A1C0742EFDF811EEA4D57274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.10.226.0/24 217.10.229.0-217.10.231.255 Signature Algorithm: sha256WithRSAEncryption 4a:dc:d5:e8:de:6f:7a:eb:2b:36:0f:9b:dc:c4:af:41:3c:df: 8d:ec:c0:bd:63:69:e1:2d:11:7c:e2:b2:26:4e:b5:ae:1f:10: 10:7e:aa:16:cb:60:b2:c4:15:d5:28:a0:11:61:69:fc:7b:39: 4a:3e:dc:02:96:ef:07:b7:bb:f2:15:6d:0b:a1:f4:6a:15:a6: c6:e8:11:78:a5:f4:3a:ff:1f:67:55:d4:30:17:99:d3:cd:c8: 49:45:fb:41:05:e3:05:9d:21:93:4d:36:e2:d9:a2:6f:fb:ae: b9:c7:f4:f9:93:ca:bd:3a:90:08:75:4e:39:a4:2e:8e:85:4d: 56:c0:9f:d2:d6:86:92:49:49:9f:b8:77:83:6d:4d:31:83:59: ff:be:33:0e:16:87:db:d2:e3:2c:db:44:ef:f7:03:7e:e5:43: 92:49:ce:53:94:20:66:ef:7f:be:1a:0e:5c:71:a9:ff:5c:74: f3:76:b8:fd:29:02:e1:55:7c:28:c3:99:ed:cc:c3:7f:31:81: 84:b6:fc:e7:9b:6c:d5:16:e5:96:f2:f2:3f:9f:fb:24:ec:13: a3:0b:df:89:88:5e:40:b0:9d:00:29:93:97:68:e0:bd:1f:0c: ba:49:c4:24:70:69:a7:ee:de:d3:af:9e:b4:39:7e:b4:09:9d: 5c:01:83:5d -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCRTkxMTAvBgNVBAUTKDBGQUI0RUY5ODI4RjRBRjI2N0MxNkQ4QUQ0NzEwQThF RUM5QkJCQUUwHhcNMjQwNzAxMDU0NjQxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyNDJjMS1hZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/POBlOdI+3iTJ7+n3nMo9O0ioGSCwJ1EfSj1mpClf1PMNorMKgJgg5tsde7 QjqBKAwIk8YhVuvm3rQsk1ORXX48fVjG1BirzYtWHcEla1p96/80mltENj6oSTdX d0lPH/yqIBIZmUbHa9lEZwhLWcM7o1ExPrdve66IHcUt000m3+PRsmj1d1eEwZvL u5bnXQcEkNINncZeKWeeJOszD/2tfS7b8/9RW3OhW6H4rrnci3pXYHLHJA/iHAFr iBH+dHzOH7fou+BMET4ixsalX2WgkumxFj7+uG2uq8vU30C9CxcJMl/LkZFJ5jZZ l6oQKru4QZ+poO2LtSyP52rFVwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKxlvWWD KY4vjiO82O4mN6FZFHhjMB8GA1UdIwQYMBaAFA+rTvmCj0ryZ8FtitRxCo7sm7uu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJFOS85NEM5Qjg3ODAw NUQxMUVFQkU3QTkyNDFDNEY5QUUwMi9ENnRPLVlLUFN2Sm53VzJLMUhFS2p1eWJ1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q2dE8tWUtQU3ZKbndXMksxSEVLanV5YnU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCRTkvOTRDOUI4NzgwMDVEMTFFRUJFN0E5MjQxQzRGOUFFMDIvQTFDMDc0MkVG REY4MTFFRUE0RDU3Mjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBADZCuIwDAMEANkK5QMEA9kK4DANBgkqhkiG9w0BAQsFAAOC AQEAStzV6N5veusrNg+b3MSvQTzfjezAvWNp4S0RfOKyJk61rh8QEH6qFstgssQV 1SigEWFp/Hs5Sj7cApbvB7e78hVtC6H0ahWmxugReKX0Ov8fZ1XUMBeZ083ISUX7 QQXjBZ0hk0024tmib/uuucf0+ZPKvTqQCHVOOaQujoVNVsCf0taGkklJn7h3g21N MYNZ/74zDhaH29LjLNtE7/cDfuVDkknOU5QgZu9/vhoOXHGp/1x083a4/SkC4VV8 KMOZ7czDfzGBhLb855ts1RbllvLyP5/7JOwTowvfiYheQLCdACmTl2jgvR8MuknE JHBpp+7e06+etDl+tAmdXAGDXQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org